The choice between friction and fraud is finally eliminated.

You No Longer Have to Keep SSNs and Account Numbers Secret

Watch how it works!

Three Easy Steps

The Authoriti Permission Code® technology answers one question:

Is this transaction authorized?

​

Institutions that need to approve a transaction based on an SSN or other ID, simply ask for a Permission Code to go along with the identifier. The consumer generates the Permission Code with a smartphone app.

The consumer may set a Permission Code to last for a set period of time, within a certain place, for a specific service. Then, a simple RESTful service call to Authoriti validates that the user associated with the ID has generated the code and that the transaction is authorized for the specific purpose.

Permission Codes may be logged, but don’t need to be stored by the institution. This simplifies adoption by only requiring Permission Code capture and checking in the user interface – without requiring changes to back-end databases.

User Experience

The Customer's Experience

​

Users can generate Permission Code smart PINs on a smartphone. If the smartphone app is used, no Internet access is required.

In a typical use case, the user will authenticate to the app on his or her smartphone, either by entering a password for the app, or by using the phone's biometric authentication capabilities such as a fingerprint scan or facial recognition. Once authenticated, the user can allow the customizable default settings to be used, or can adjust settings to fit a specific need.

The parameters include the identifier requiring authorization (e.g., SSN, credit card number, driver's license number), the time span the authorization is valid for (ranging from just hours up to months), the geographic region, and the industry (e.g., retail, healthcare, banking). The app then generates a 10-character Permission Code which is displayed both as text and as a QR code.

The Institution’s Experience

The organization consuming this data simply captures and tests a Permission Code. Capture can be input manually or scanned via a QR code. Validating the code be done at the time of capture, or in subsequent batch processing.

Validating Permission Codes at the time of capture eliminates the need to store them. To access Authoriti.net, our customers are provided with a simple API, that easily integrates into their existing CRM environment.